Trivy Report - Vulnerabilities (2984)

via scan2html(v0.3.26-rc.2)
Filter by:
Show columns:
Target
Library/Package
Vulnerability
NVD V2Score
NVD V3Score
EPSS Score %
Severity
Exploits
Installed Version
Fixed Version
Title
ruby:3.1 (debian 12.10)imagemagickCVE-2025-530149.80.02CRITICAL8:6.9.11.60+dfsg-1.6+deb12u2 8:6.9.11.60+dfsg-1.6+deb12u4ImageMagick: ImageMagick Heap Buffer Overflow
ruby:3.1 (debian 12.10)imagemagickCVE-2025-531019.80.05CRITICAL8:6.9.11.60+dfsg-1.6+deb12u2 8:6.9.11.60+dfsg-1.6+deb12u4ImageMagick: ImageMagick Stack Buffer Overflow
ruby:3.1 (debian 12.10)imagemagickCVE-2025-578079.80.04CRITICAL8:6.9.11.60+dfsg-1.6+deb12u2 8:6.9.11.60+dfsg-1.6+deb12u4imagemagick: ImageMagick BlobStream Forward-Seek Under-Allocation
ruby:3.1 (debian 12.10)libaom3CVE-2023-68799.80.15CRITICAL3.6.0-1+deb12u1 aom: heap-buffer-overflow on frame size change
ruby:3.1 (debian 12.10)libopenexr-3-1-30CVE-2023-58419.10.8CRITICAL3.1.5-5 OpenEXR: Heap Overflow in Scanline Deep Data Parsing
ruby:3.1 (debian 12.10)libsqlite3-0CVE-2025-69659.80.02CRITICAL3.40.1-2+deb12u1 3.40.1-2+deb12u2sqlite: Integer Truncation in SQLite
ruby:3.1 (debian 12.10)libsqlite3-0CVE-2025-74589.10.09CRITICAL3.40.1-2+deb12u1 sqlite: SQLite integer overflow
ruby:3.1 (debian 12.10)libxml2CVE-2024-561719.80.04CRITICAL2.9.14+dfsg-1.3~deb12u1 2.9.14+dfsg-1.3~deb12u2libxml2: Use-After-Free in libxml2
ruby:3.1 (debian 12.10)libxml2CVE-2025-497949.10.26CRITICAL2.9.14+dfsg-1.3~deb12u1 2.9.14+dfsg-1.3~deb12u3libxml: Heap use after free (UAF) leads to Denial of service (DoS)
ruby:3.1 (debian 12.10)libxml2CVE-2025-497969.10.46CRITICAL2.9.14+dfsg-1.3~deb12u1 2.9.14+dfsg-1.3~deb12u3libxml: Type confusion leads to Denial of service (DoS)
ruby:3.1 (debian 12.10)zlib1gCVE-2023-458539.80.62CRITICAL1:1.2.13.dfsg-1 zlib: integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_6
ruby:3.1 (debian 12.10)gir1.2-gdkpixbuf-2.0CVE-2025-73457.50.15HIGH2.42.10+dfsg-1+deb12u1 gdk‑pixbuf: Heap‑buffer‑overflow in gdk‑pixbuf
ruby:3.1 (debian 12.10)gitCVE-2025-483848.10.74HIGH
CISA KEV
1:2.39.5-0+deb12u2 git: Git arbitrary code execution
ruby:3.1 (debian 12.10)gitCVE-2025-483858.30.02HIGH1:2.39.5-0+deb12u2 git: Git arbitrary file writes
ruby:3.1 (debian 12.10)icu-devtoolsCVE-2025-522270.03HIGH72.1-3 72.1-3+deb12u1icu: Stack buffer overflow in the SRBRoot::addTag function
ruby:3.1 (debian 12.10)imagemagickCVE-2025-530197.50.05HIGH8:6.9.11.60+dfsg-1.6+deb12u2 8:6.9.11.60+dfsg-1.6+deb12u4ImageMagick: ImageMagick Memory Leak
ruby:3.1 (debian 12.10)imagemagickCVE-2025-551548.80.07HIGH8:6.9.11.60+dfsg-1.6+deb12u2 8:6.9.11.60+dfsg-1.6+deb12u4imagemagick: ImageMagick: integer overflows in MNG magnification
ruby:3.1 (debian 12.10)imagemagickCVE-2025-552127.50.2HIGH8:6.9.11.60+dfsg-1.6+deb12u2 8:6.9.11.60+dfsg-1.6+deb12u4ImageMagick: ImageMagick crash on crafted input
ruby:3.1 (debian 12.10)imagemagickCVE-2025-552988.80.39HIGH8:6.9.11.60+dfsg-1.6+deb12u2 8:6.9.11.60+dfsg-1.6+deb12u4ImageMagick: ImageMagick Format String Bug in InterpretImageFilename leads to arbitrary code execution
ruby:3.1 (debian 12.10)imagemagickCVE-2025-578038.80.07HIGH8:6.9.11.60+dfsg-1.6+deb12u2 8:6.9.11.60+dfsg-1.6+deb12u4imagemagick: ImageMagick (WriteBMPImage): 32-bit integer overflow when writing BMP scanline stride → heap buffer overflow